The PhishLabs Blog

Amanda Kline

Cyber Threat Intelligence Analyst

Recent Posts

Globe Imposter Ransomware Makes a New Run

Posted by Amanda Kline on Aug 10, '17

In the world of cyber security, there are some threats that seem to have been specifically designed to wreck your day.

Ransomware is one of those threats.

Even if you have secure backups, and they’re kept safely away from the rest of your network, the time it takes to restore from them and remove all traces of the offending trojan is sure to get your blood boiling.

So when a new ransomware threat arises, it pays to make sure your house is in order, and your users are on high alert.

Read More

Topics: Ransomware

New Tech Support Scam Strikes Amazon, eBay, and Alibaba Customers

Posted by Amanda Kline on Jun 28, '17

In a world where new cyber threats seem to develop almost daily, it’s easy to forget that some tactics have stood the test of time.

Since mid-May, PhishLabs has been tracking an ongoing consumer-focused email phishing campaign.

And what tactic have they been using? The dreaded tech support scam.

No matter how much technology develops, threat actors will nearly always default to the simplest tactic that still works. And when it comes to consumer-focused phishing, there’s nothing simpler (and more effective) than a well constructed tech support scam.

Read More

Topics: Phishing

Evolving Tactics in Tax Phishing: A Recap of the 2017 Tax Season

Posted by Amanda Kline on Jun 14, '17

It used to be said that the only certain things in life were death and taxes.

But this adage is in desperate need of an update. In the age of technology, the only certain things in life are death, taxes, and phishing scams.

And scams targeting taxpayers and tax preparers are just the tip of the iceberg. This tax season, schools, nonprofits, NGOs, state/local governments, and aid organizations have also found themselves the targets of wide ranging tax and W-2 phishing scams. 

Read More

Topics: IRS Phishing Attacks

Exploring the Surge in Phishing Attacks During the Holidays

Posted by Amanda Kline on Dec 1, '16

It should come as no surprise that the holiday season inevitably means an increase in scams and financial fraud. Long gone are the years where we only needed to worry about theft as a result of home burglaries and car break-ins. We not only need to worry about leaving store purchases and gifts in plain view in our cars or homes, but our credit card information being transmitted in plain text via payment services, and the ever increasing threat of phishing and ecommerce scams targeting holiday shoppers.

Read More

Topics: Phishing, Holiday Scams

When Good Websites Turn Evil: How Cybercriminals Exploit File Upload Features to Host Phishing Sites

Posted by Amanda Kline on Aug 25, '16

Compromised websites are an integral part of the cybercrime ecosystem. They are used by cybercriminals to host a wide range of malicious content, including phishing sites, exploit kits, redirects to other malicious sites, and other tools needed to carry out attacks.  Why? One reason is because there is an abundance of insecure websites around the world that can be easily compromised. Another reason is because legitimate sites that have only been recently compromised are less likely to be blacklisted by internet browsers and other security measures.

Read More

Topics: Phishing, Malware, GIF89a, whitelisting

Google AdWords Used in Bitcoin, Banking, and Online Gambling Phishing Campaigns

Posted by Amanda Kline on Aug 19, '16

Hackers targeting bitcoin wallet users are once again leveraging Google’s AdWords in their most recent campaigns. Phishlabs has previously seen similar attacks against banks and online gambling sites over the past year. Some of the most recent attacks have targeted Blockchain and Kraken and have been widely blogged and tweeted about over the past week.  As seen in the screenshot below, a Google search for “blockchain.info” returns a Google ad for a look alike domain “blockchian.info” (figure 1). Kraken has released a statement via their blog acknowledging the ongoing campaigns and its attempt to mitigate the threat which can be read here

 Figure 1 Sourced https://twitter.com/myetherwallet/status/766360476246618113

Read More

Topics: Phishing, Bitcoin, blockchain, adwords

   

What's this all about?

The PhishLabs Blog is where we share our insights and thoughts on cybercrime and online fraud.

Upcoming Events

Calendar_Mock_

Posts by Topic

see all